$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft File: nIFHHxiq7s35RafJF_2KiYXXw6w.mft (raw, json) Hash identifier: OlE6RFnxAuVqUaZY/TEtSh9oD6ZiAmCsdRCAu/bJpf0= Subject key identifier: 07:2D:DB:72:D1:2A:13:3A:4D:D0:5A:66:51:00:91:24:5D:95:18:EC Authority key identifier: 9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC Certificate issuer: /CN=A914C33A/serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Certificate serial: 2A7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft Manifest number: 2A3E Signing time: Mon 28 Apr 2025 15:39:31 +0000 Manifest this update: Mon 28 Apr 2025 15:39:30 +0000 Manifest next update: Mon 05 May 2025 15:39:30 +0000 Files and hashes: 1: nIFHHxiq7s35RafJF_2KiYXXw6w.crl (hash: kne6sEBb6yyGmk3UEgopDVu6fZhF3KPaf2HMqX6mP0Q=) 2: FB405D86900E11EAA43BB21FC4F9AE02.roa (hash: xBHGq+I+gC6mBEO7iAqcoK3D8WpSvv5eSxXQn/j0Q60=) 3: 3118E43E966B11EAAA23047CC4F9AE02.roa (hash: gq6V0/TIcAAKvh2pY9bQTg3IwnYpN56MDdlGTWJZ3cM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10876 (0x2a7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Validity Not Before: Apr 28 15:39:30 2025 GMT Not After : May 5 15:39:30 2025 GMT Subject: CN=680fa133-8c9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:de:f9:bf:c8:c2:0f:23:8c:74:aa:a3:89:9e: d9:2e:8b:96:cb:aa:a7:b2:52:80:9e:be:63:82:84: f1:be:53:63:a9:9f:3b:10:1b:f1:f7:f8:10:e2:be: 7e:62:60:b5:fc:47:a4:4f:73:e8:cd:47:3a:e6:88: 6f:8a:b1:cd:bd:ec:1d:1c:38:e2:ee:53:2f:68:a9: 37:0f:3a:19:9d:76:2d:c4:5f:a8:3a:99:0f:36:54: f3:20:7f:17:05:ce:c4:27:6a:80:77:ed:4b:84:54: 53:c7:96:b1:a5:57:73:9c:cc:be:ed:c1:f1:87:ed: 34:ee:89:35:60:c2:78:3e:64:80:25:99:48:98:1f: d3:22:31:5c:b6:6d:35:bd:d8:7d:8f:df:d5:41:e5: eb:0b:10:b8:7a:94:ef:36:c1:ae:e9:92:58:e6:19: 34:a7:4b:cd:b0:e8:cc:bb:f0:45:c4:68:0f:2d:2c: f2:16:de:76:33:9d:d4:c8:5b:f2:5b:6b:0b:2c:1c: 4d:d5:68:df:e6:fb:a4:eb:76:80:37:ef:04:b0:c6: a8:ed:0f:8f:0b:bd:f2:15:d3:a0:25:a3:d4:09:6f: 65:31:1b:e1:e2:72:54:94:f8:9d:ac:ac:a3:b8:b8: b2:e9:bf:cc:c8:e2:1e:cc:6f:60:fd:36:ce:d3:1d: be:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:2D:DB:72:D1:2A:13:3A:4D:D0:5A:66:51:00:91:24:5D:95:18:EC X509v3 Authority Key Identifier: keyid:9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:fb:00:e3:0e:0e:57:74:d3:82:ab:c2:c9:9a:88:af:6b:ce: d1:3c:40:6a:64:79:31:2d:72:4a:00:7c:98:33:72:03:93:8a: 81:da:17:23:0e:f7:d2:e0:4f:5f:0c:44:dc:75:55:72:7a:c3: 2d:49:76:86:a2:f6:41:e9:f8:1b:bf:05:be:0d:a9:2d:81:fc: 00:bd:39:f5:2d:56:10:59:44:33:c3:e8:04:fd:4c:ba:b8:f3: c8:de:c2:87:78:9c:b1:be:a1:74:15:ed:f8:83:5b:32:f8:83: 23:e9:a0:6e:be:b8:5f:d3:00:0c:2f:2d:35:4a:ca:89:22:61: cb:0a:17:65:33:12:17:be:6f:75:a8:42:b4:68:f8:8b:fe:f3: 57:aa:f2:63:77:db:64:92:77:04:82:e9:db:d4:5f:1e:18:cb: cc:aa:43:67:8c:75:a3:13:a0:2b:61:d1:c9:61:29:6b:3b:26: 9b:aa:e5:f1:68:86:fa:7c:2c:22:0f:b5:8d:1d:a0:57:74:3a: 75:e2:6c:81:82:56:b5:46:e2:74:e6:e8:bb:0c:93:2a:85:a1: 80:33:8d:4f:cc:06:ea:c6:80:ea:b3:ef:38:f4:e7:03:a7:f6: 6f:0d:94:d5:c3:3b:7d:4a:e3:18:09:1d:2d:91:2e:10:9e:7e: 26:a9:66:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDlDODE0NzFGMThBQUVFQ0RGOTQ1QTdDOTE3RkQ4QTg5 ODVEN0MzQUMwHhcNMjUwNDI4MTUzOTMwWhcNMjUwNTA1MTUzOTMwWjAYMRYwFAYD VQQDEw02ODBmYTEzMy04YzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm975v8jCDyOMdKqjiZ7ZLouWy6qnslKAnr5jgoTxvlNjqZ87EBvx9/gQ4r5+ YmC1/EekT3PozUc65ohvirHNvewdHDji7lMvaKk3DzoZnXYtxF+oOpkPNlTzIH8X Bc7EJ2qAd+1LhFRTx5axpVdznMy+7cHxh+007ok1YMJ4PmSAJZlImB/TIjFctm01 vdh9j9/VQeXrCxC4epTvNsGu6ZJY5hk0p0vNsOjMu/BFxGgPLSzyFt52M53UyFvy W2sLLBxN1Wjf5vuk63aAN+8EsMao7Q+PC73yFdOgJaPUCW9lMRvh4nJUlPidrKyj uLiy6b/MyOIezG9g/TbO0x2+9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAct23LR KhM6TdBaZlEAkSRdlRjsMB8GA1UdIwQYMBaAFJyBRx8Yqu7N+UWnyRf9iomF18Os MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS8xRDJCRDAzRTJE REIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdzMzVSYWZKRl8yS2lZWFh3 NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JRkhIeGlxN3MzNVJhZkpGXzJLaVlYWHc2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS8xRDJCRDAzRTJEREIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdz MzVSYWZKRl8yS2lZWFh3NncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA+wDjDg5XdNOCq8LJmoiva87RPEBqZHkxLXJKAHyYM3IDk4qB2hcj DvfS4E9fDETcdVVyesMtSXaGovZB6fgbvwW+DaktgfwAvTn1LVYQWUQzw+gE/Uy6 uPPI3sKHeJyxvqF0Fe34g1sy+IMj6aBuvrhf0wAMLy01SsqJImHLChdlMxIXvm91 qEK0aPiL/vNXqvJjd9tkkncEgunb1F8eGMvMqkNnjHWjE6ArYdHJYSlrOyabquXx aIb6fCwiD7WNHaBXdDp14myBgla1RuJ05ui7DJMqhaGAM41PzAbqxoDqs+849OcD p/ZvDZTVwzt9SuMYCR0tkS4Qnn4mqWaE -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:51 2025 by rpki-client on console.sobornost.net